METHOD AND SYSTEM FOR PREVENTING LOWER-LAYER LEVEL ATTACKS IN A NETWORK
First Claim
1. A method for preventing lower-layer level attacks committed against entities in a network, comprising:
- forming a secure peer group (SPG) of member entities in the network, wherein each of the member entities is configured with a media access control (MAC) address locked to its own identity and a Internet protocol (IP) address linked to its MAC address;
establishing a secure handshake between at least a source member entity and a target member entity of the SPG by mutually authenticating the source member entity and the target member entity; and
securely transferring data from the source member entity to the target member entity.
0 Assignments
0 Petitions
Accused Products
Abstract
A method for preventing lower-layer level attacks committed against entities in a network. The method comprises forming a secure peer group (SPG) of member entities in the network, wherein each of the member entities is configured with a media access control (MAC) address locked to its own identity and a Internet protocol (IP) address linked to its MAC address; establishing a secure handshake between at least a source member entity and a target member entity of the SPG by mutually authenticating of the source member entity and the target member entity; and securely transferring data from the source member entity to the target member entity.
-
Citations
26 Claims
-
1. A method for preventing lower-layer level attacks committed against entities in a network, comprising:
-
forming a secure peer group (SPG) of member entities in the network, wherein each of the member entities is configured with a media access control (MAC) address locked to its own identity and a Internet protocol (IP) address linked to its MAC address; establishing a secure handshake between at least a source member entity and a target member entity of the SPG by mutually authenticating the source member entity and the target member entity; and securely transferring data from the source member entity to the target member entity. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14)
-
-
15. A system for preventing lower-layer level attacks committed against entities in a network, comprising:
-
a plurality of member entities connected to a network, wherein the plurality of member entities are part of a secure peer group (SPG), each of the plurality of the member entities is configured with a media access control (MAC) address locked to its respective identity and with a unique identification; a secure server for verifying legitimacy of a member entity requesting an Internet protocol (IP) address and upon verification assigning an IP address to the member entity, wherein the IP address is linked to a MAC address of the entity member; at least a source member entity which is a member of the SPG; and at least a target member entity which is a member of the SPG, wherein the source member entity establishes a secure handshake with the target member entity and securely transfers data to the target member entity. - View Dependent Claims (16)
-
-
17. A method for providing packet level security during data transfer between a source member entity and a target member entity belonging to a secure peer group (SPG), comprising:
-
preparing an add-on to each data packet to be transferred; combining the add-on with the data packet to form a new data packet; encrypting the new data packet using a security key belonging to the target member entity to form an encrypted new data packet; and sending the encrypted new data packet to the target member entity. - View Dependent Claims (18, 19, 20, 21, 22, 23, 24, 25, 26)
-
Specification